Technical Information
- [<HKLM>\SYSTEM\ControlSet001\Services\Network ] 'Start' = '00000002'
- <SYSTEM32>\search.exe /service
- <SYSTEM32>\conime.dat
- <SYSTEM32>\search.exe
- 'bj###.xicp.net':8081
- DNS ASK bj###.xicp.net
- '<Private IP address>':1035
- ClassName: 'Shell_TrayWnd' WindowName: ''